This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4XsQ_WB62ScAbGLONWkeuqjwGLU.cer File: 4XsQ_WB62ScAbGLONWkeuqjwGLU.cer (raw, json) Hash identifier: d5iGLHDsEtBoZ4jppyHqUcsyyJg8bcyxhKdENFvOVY4= Subject key identifier: E1:7B:10:FD:60:7A:D9:27:00:6C:62:CE:35:69:1E:BA:A8:F0:18:B5 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B77C751C8D1A4811A96EF89504F72E6AC Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/92/8432ed-2c97-41d3-926a-6a4d04ba5898/1/4XsQ_WB62ScAbGLONWkeuqjwGLU.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/92/8432ed-2c97-41d3-926a-6a4d04ba5898/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 04:18:29 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 51968 IP: 46.23.128.0/20 IP: 2a10:2880::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:51:c8:d1:a4:81:1a:96:ef:89:50:4f:72:e6:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 04:18:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e17b10fd607ad927006c62ce35691ebaa8f018b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:03:5f:0f:71:50:e6:a8:54:d9:2c:f9:46:1e: 43:ab:04:76:df:7c:cb:dd:26:8b:8f:e4:6b:70:71: 14:5d:9a:c5:da:a3:09:b8:2b:6f:9d:79:4f:09:6e: 2d:7c:e5:39:37:62:ea:56:e2:d9:d8:7b:e5:9b:67: 47:77:53:7b:ff:2f:30:8c:ad:07:0b:f9:10:2e:d2: 4b:cc:c7:d8:48:db:21:68:ad:bf:4e:82:b2:ed:96: 69:17:cf:cb:24:77:8e:44:e1:6b:e9:90:0f:07:f8: 79:0f:1c:7e:73:e9:eb:93:8d:e4:34:e4:1d:34:f7: d9:98:12:55:d5:84:4c:97:bf:98:d9:da:ee:ff:d2: f2:ee:68:54:d0:ec:2b:02:c6:f4:19:87:95:74:b1: d1:14:da:8e:e3:a7:d7:6e:9b:ee:50:e7:2f:ed:30: c4:ad:3c:e0:fe:54:6f:39:b6:63:63:81:0d:8c:e1: 13:ee:42:72:bb:0c:d1:30:48:15:6e:e1:22:5a:34: 0b:d8:94:4a:00:2a:fe:74:96:27:b3:9b:6a:c5:bf: 48:a7:d4:7e:9b:cc:28:65:2e:1f:ca:99:36:e4:ad: 8c:6a:61:51:68:4d:a6:7b:a8:a1:e2:fd:2d:78:71: 2a:11:83:d0:02:b6:05:40:2b:bf:a2:22:62:5d:14: 23:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:7B:10:FD:60:7A:D9:27:00:6C:62:CE:35:69:1E:BA:A8:F0:18:B5 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/8432ed-2c97-41d3-926a-6a4d04ba5898/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/8432ed-2c97-41d3-926a-6a4d04ba5898/1/4XsQ_WB62ScAbGLONWkeuqjwGLU.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.23.128.0/20 IPv6: 2a10:2880::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 51968 Signature Algorithm: sha256WithRSAEncryption 19:39:87:9d:11:e5:8f:78:d8:d1:2f:fb:0e:da:68:a7:9a:d5: 71:db:ed:b9:aa:af:2c:af:08:df:da:35:71:d9:5f:98:4f:7f: 76:3f:3b:ff:4b:75:ec:14:ca:30:eb:c4:bb:11:a5:f7:bf:8e: c5:fc:de:da:0c:a1:f4:86:0d:9a:67:22:14:3b:75:37:a8:8c: 85:8c:26:57:6a:30:7f:95:26:48:ee:2b:f9:46:b8:4e:8b:d5: 8c:36:d4:df:db:32:38:cb:01:ee:49:0b:64:63:c4:69:94:a0: 9e:57:fa:22:1f:3b:3d:9b:57:42:c6:2f:fa:a8:09:75:09:e5: 49:6b:b4:be:65:85:60:4b:b7:ee:b8:33:59:f4:84:3f:27:3d: cc:4a:06:77:4b:8c:86:65:0a:77:e2:5d:49:ae:18:6a:ec:62: 95:af:28:0a:31:32:c9:5b:73:dd:47:fc:ab:cc:eb:9f:22:a4: d3:ba:91:a2:cd:8d:b1:10:09:86:51:b0:91:a9:ff:00:51:92: fb:71:7b:e1:59:11:aa:95:fc:28:aa:aa:49:91:78:fd:02:19: c6:2a:1b:1e:0c:2e:03:52:90:b6:49:f8:3f:bc:93:83:a7:b6: 97:9a:5e:1a:2d:01:e1:f6:04:55:9d:8e:92:10:1b:7a:3e:a1: 8a:69:b4:a6 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt3x1HI0aSBGpbviVBPcuasMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDQxODI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMTdiMTBmZDYwN2FkOTI3MDA2YzYyY2UzNTY5MWViYWE4ZjAxOGI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArwNfD3FQ5qhU2Sz5Rh5DqwR233zL 3SaLj+RrcHEUXZrF2qMJuCtvnXlPCW4tfOU5N2LqVuLZ2Hvlm2dHd1N7/y8wjK0H C/kQLtJLzMfYSNshaK2/ToKy7ZZpF8/LJHeOROFr6ZAPB/h5Dxx+c+nrk43kNOQd NPfZmBJV1YRMl7+Y2dru/9Ly7mhU0OwrAsb0GYeVdLHRFNqO46fXbpvuUOcv7TDE rTzg/lRvObZjY4ENjOET7kJyuwzRMEgVbuEiWjQL2JRKACr+dJYns5tqxb9Ip9R+ m8woZS4fypk25K2MamFRaE2me6ih4v0teHEqEYPQArYFQCu/oiJiXRQjjQIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFOF7EP1getknAGxizjVpHrqo8Bi1MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzkyLzg0MzJl ZC0yYzk3LTQxZDMtOTI2YS02YTRkMDRiYTU4OTgvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTIvODQzMmVk LTJjOTctNDFkMy05MjZhLTZhNGQwNGJhNTg5OC8xLzRYc1FfV0I2MlNjQWJHTE9O V2tldXFqd0dMVS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQELheAMA0EAgACMAcDBQAqECiAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwDLADANBgkqhkiG9w0BAQsFAAOCAQEAGTmHnRHlj3jY 0S/7Dtpop5rVcdvtuaqvLK8I39o1cdlfmE9/dj87/0t17BTKMOvEuxGl97+Oxfze 2gyh9IYNmmciFDt1N6iMhYwmV2owf5UmSO4r+Ua4TovVjDbU39syOMsB7kkLZGPE aZSgnlf6Ih87PZtXQsYv+qgJdQnlSWu0vmWFYEu37rgzWfSEPyc9zEoGd0uMhmUK d+JdSa4Yauxila8oCjEyyVtz3Uf8q8zrnyKk07qRos2NsRAJhlGwkan/AFGS+3F7 4VkRqpX8KKqqSZF4/QIZxiobHgwuA1KQtkn4P7yTg6e2l5peGi0B4fYEVZ2OkhAb ej6himm0pg== -----END CERTIFICATE-----Generated at Mon Feb 9 22:35:03 2026 by rpki-client